glibc vulnerability CVE-2014-7817
Bug #1396471 reported by
Pasi Sjöholm
This bug affects 1 person
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
eglibc (Ubuntu) |
Invalid
|
Undecided
|
Unassigned | ||
Lucid |
Fix Released
|
Medium
|
Marc Deslauriers | ||
Precise |
Fix Released
|
Medium
|
Marc Deslauriers | ||
Trusty |
Fix Released
|
Medium
|
Marc Deslauriers | ||
Utopic |
Invalid
|
Undecided
|
Unassigned | ||
Vivid |
Invalid
|
Undecided
|
Unassigned | ||
glibc (Ubuntu) |
Fix Released
|
Medium
|
Adam Conrad | ||
Lucid |
Invalid
|
Undecided
|
Unassigned | ||
Precise |
Invalid
|
Undecided
|
Unassigned | ||
Trusty |
Invalid
|
Undecided
|
Unassigned | ||
Utopic |
Fix Released
|
Medium
|
Marc Deslauriers | ||
Vivid |
Fix Released
|
Medium
|
Adam Conrad |
information type: | Private Security → Public Security |
Changed in eglibc (Ubuntu): | |
status: | New → Confirmed |
Changed in eglibc (Ubuntu Lucid): | |
assignee: | nobody → Marc Deslauriers (mdeslaur) |
importance: | Undecided → Medium |
status: | New → Confirmed |
Changed in eglibc (Ubuntu Precise): | |
assignee: | nobody → Marc Deslauriers (mdeslaur) |
importance: | Undecided → Medium |
status: | New → Confirmed |
Changed in eglibc (Ubuntu Trusty): | |
assignee: | nobody → Marc Deslauriers (mdeslaur) |
importance: | Undecided → Medium |
status: | New → Confirmed |
Changed in eglibc (Ubuntu Utopic): | |
status: | New → Invalid |
Changed in eglibc (Ubuntu Vivid): | |
status: | Confirmed → Invalid |
Changed in glibc (Ubuntu Lucid): | |
status: | New → Invalid |
Changed in glibc (Ubuntu Precise): | |
status: | New → Invalid |
Changed in glibc (Ubuntu Trusty): | |
status: | New → Invalid |
Changed in glibc (Ubuntu Utopic): | |
assignee: | nobody → Marc Deslauriers (mdeslaur) |
importance: | Undecided → Medium |
status: | New → Confirmed |
Changed in glibc (Ubuntu Vivid): | |
assignee: | nobody → adicarlo (adam) |
importance: | Undecided → Medium |
status: | New → Confirmed |
assignee: | adicarlo (adam) → Adam Conrad (adconrad) |
To post a comment you must log in.
This bug was fixed in the package glibc - 2.19-10ubuntu2.1
---------------
glibc (2.19-10ubuntu2.1) utopic-security; urgency=medium
* SECURITY UPDATE: denial of service in IBM gconv modules patches/ any/cvs- CVE-2014- 6040.diff: fix checks in /ibm*.c. patches/ any/CVE- 2014-7817. diff: properly handle WRDE_NOCMD in wordexp. c, added tests to posix/wordexp- test.c.
- debian/
iconvdata
- CVE-2014-6040
* SECURITY UPDATE: arbitrary command execution via wordexp (LP: #1396471)
- debian/
posix/
- CVE-2014-7817
-- Marc Deslauriers <email address hidden> Fri, 28 Nov 2014 10:48:58 -0500